github.com/sourcegraph/sourcegraph is vulnerable to authorization bypass. The vulnerability exists in UpdateSavedSearch
function in saved_searches.go
because the update permissions are not properly handled which allows an attacker to delete other user’s saved search information.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/sourcegraph/sourcegraph | le | v3.40.2 | |
github.com/sourcegraph/sourcegraph | le | v3.40.2 |